Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UUthMgRJq2lMQYJwT_lrofMi38o.roa
File: UUthMgRJq2lMQYJwT_lrofMi38o.roa (raw, json)
Hash identifier: rqlgo4cqamrl2ccAZW0FuRiGOESQa08KhSGnbTbXqew=
Subject key identifier: 51:4B:61:32:04:49:AB:69:4C:41:82:70:4F:F9:6B:A1:F3:22:DF:CA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08B6
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UUthMgRJq2lMQYJwT_lrofMi38o.roa
Signing time: Tue 29 Sep 2020 09:52:21 +0000
ROA not before: Tue 29 Sep 2020 09:52:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 203.67.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2230 (0x8b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=514B61320449AB694C4182704FF96BA1F322DFCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5c:0e:6a:ef:37:a7:d9:b0:40:70:34:35:d2:
b3:a8:34:0a:73:aa:32:8c:82:a1:05:8f:ce:27:47:
e9:09:8a:e0:bb:f2:f4:d7:08:f7:a9:c5:4b:ec:a3:
14:8d:26:c7:de:50:f2:78:6a:89:b0:d0:b4:a1:34:
67:74:15:1f:1c:0f:f3:d8:36:24:b3:40:d3:32:5b:
91:75:4a:2d:34:4e:29:3b:b1:d5:1b:6e:3f:9f:10:
4a:c5:78:5b:c9:72:65:1f:73:06:ea:4f:01:ff:47:
21:f6:e5:b1:66:fa:6a:8e:69:6c:7b:98:39:b8:e2:
f1:f5:91:63:6b:42:8b:10:de:1e:eb:f2:97:e7:9a:
aa:1a:35:de:3f:96:7b:28:21:51:85:62:c5:52:82:
b3:ac:c7:08:7b:9c:55:59:ae:b2:96:31:87:8e:e1:
2d:b3:05:58:53:51:7d:a5:a8:af:9b:75:3a:d3:6b:
ee:28:e5:e5:6b:ee:38:b2:0f:60:0a:0f:15:45:8f:
3d:1a:70:8c:8a:67:fa:25:3a:dc:cf:39:d3:67:ef:
ac:c5:54:8a:8d:07:8c:d1:59:79:06:22:db:ea:7f:
6d:a3:e2:ca:e8:7d:7a:8a:32:cb:6f:ad:17:ce:1b:
fb:8a:d2:53:8f:f1:29:0e:ac:c1:7b:45:df:f3:53:
4d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:4B:61:32:04:49:AB:69:4C:41:82:70:4F:F9:6B:A1:F3:22:DF:CA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UUthMgRJq2lMQYJwT_lrofMi38o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.67.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1d:e9:1d:83:ca:12:d7:d0:04:7f:2d:67:9d:51:79:01:8a:cd:
98:41:79:b4:8c:a3:d8:46:72:d9:03:d9:dd:84:64:dc:94:10:
45:07:6b:d7:fc:62:47:8f:82:db:b8:23:14:11:7e:54:d7:fc:
19:72:99:57:35:09:bd:ca:ab:8a:d8:d8:96:cf:87:af:df:6c:
de:65:4c:95:ca:2f:05:e6:7a:54:c2:51:76:39:4e:fb:b7:fe:
a2:dc:35:ef:e8:9c:b0:e3:2e:b0:67:3e:b0:d0:e2:64:08:12:
cb:23:10:cd:0a:a7:c2:fc:5e:f9:87:fa:05:34:28:7b:21:b1:
2d:55:6b:4c:4d:f6:e6:7e:a9:9e:84:98:9e:87:b4:48:50:fc:
75:43:dc:c7:e7:5f:7a:eb:1d:64:d6:44:ce:22:c0:80:46:f9:
31:c0:ab:2c:b0:03:5c:12:d0:f1:ee:1a:9a:52:6e:50:95:85:
07:5e:b9:a6:cc:ab:80:00:9c:c0:cd:5f:d2:7e:90:0d:e6:d5:
26:04:c7:28:b5:9f:dd:4b:63:6f:c2:3a:99:30:10:94:13:a9:
8c:31:fc:1d:d7:f9:35:bc:05:4e:a1:0b:f6:4d:07:ae:c3:dc:
31:2d:cd:20:e8:f6:5d:b8:a8:18:a8:38:9b:c0:65:8a:f8:34:
ff:0e:d1:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:33:28 2025 by rpki-client